CVE-2023-35813

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jun 17, 2023

Updated: Jun 30, 2023

Summary

CVE-2023-35813 is a critical vulnerability affecting multiple Sitecore products, including Experience Manager, Experience Platform, and Experience Commerce. The issue permits remote code execution, granting attackers unauthorized access and control over affected systems. This vulnerability can lead to data theft, unauthorized system modifications, and potential complete system compromise. Affected versions range from 10.x through 10.3. All users of these Sitecore products are urged to apply the necessary patches as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

Sitecore Experience Platform
Sitecore Experience Manager

Affected Vendors

Sitecore Holding II A/S

Advisories, Assessments, and Mitigations

Back to Vulnerability Database